cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
4926
Views
10
Helpful
2
Replies

Replace Primary FTD with new FTD

SaintEvn
Level 1
Level 1

Hi all,

We’ve deployed FTD HA managed by FMC. Last week the primary unit had failed and we are running with only secondary FTD.

And we are now planning to replace the primary unit with new FTD. Are there any ways to replace the unit without breaking the HA ? We don't have any backup for primary FTD .

Thank you all.

1 Accepted Solution

Accepted Solutions

 

 

 

ReplaceFTD.PNG

https://www.cisco.com/c/en/us/td/docs/security/firepower/601/configuration/guide/fpmc-config-guide-v601/fpmc-config-guide-v601_chapter_01100110.pdf

 

    1. Break the HA on FMC.
    2. De-register/delete the Primary unit from FMC.
    3. Power off and remove Primary unit Firepower device from rack after removing all network connections.
    4. Replace the power supply, fan and SSD from old Firepower unit to new.
    5. Rack the new unit and power on. Same management ip as old unit to be set via CLI.
    6. Deploy FTD on new unit with the same interfaces and register with FMC.
    7. Upgrade to same version and patch level as primary from FMC.
    8. Add them both as HA pair on FMC.
    9. Verify Failover functionality post change.
please do not forget to rate.

View solution in original post

2 Replies 2

 

 

 

ReplaceFTD.PNG

https://www.cisco.com/c/en/us/td/docs/security/firepower/601/configuration/guide/fpmc-config-guide-v601/fpmc-config-guide-v601_chapter_01100110.pdf

 

    1. Break the HA on FMC.
    2. De-register/delete the Primary unit from FMC.
    3. Power off and remove Primary unit Firepower device from rack after removing all network connections.
    4. Replace the power supply, fan and SSD from old Firepower unit to new.
    5. Rack the new unit and power on. Same management ip as old unit to be set via CLI.
    6. Deploy FTD on new unit with the same interfaces and register with FMC.
    7. Upgrade to same version and patch level as primary from FMC.
    8. Add them both as HA pair on FMC.
    9. Verify Failover functionality post change.
please do not forget to rate.

SaintEvn
Level 1
Level 1

Thank you so much . That's really helpful

Review Cisco Networking for a $25 gift card